CVE-2008-4307

Severity :

Medium

Published :

2009-01-13

Modified :

2012-03-19

Base Score :

4.0

Details :

Race condition in the do_setlk function in fs/nfs/file.c in the Linux kernel before 2.6.26 allows local users to cause a denial of service (crash) via vectors resulting in an interrupted RPC call that leads to a stray FL_POSIX lock, related to improper handling of a race between fcntl and close in the EINTR case.